Flaw in OpenShift Router Allows Sensitive Data Disclosure
CVE-2026-42965

7.7HIGH

Key Information:

Vendor: Red Hat
Status: Red Hat Openshift Container Platform 4
Vendor: CVE Published:; 29 May 2026

What is CVE-2026-42965?

A security flaw has been identified in the OpenShift Router, where users with EndpointSlice write access can exploit the system. This vulnerability allows an attacker to create a service backed by an FQDN EndpointSlice that resolves to a cloud metadata endpoint. By doing so, it becomes possible for the router to proxy requests to this endpoint, potentially leading to the disclosure of sensitive instance credentials and metadata. This incident bypasses existing security measures designed to validate IP addresses, posing a significant risk to user data.

References

https://access.redhat.com/security/cve/CVE-2026-42965

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2483184

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 29, 2026
Vulnerability Reserved
May 28, 2026

Credit

This issue was discovered by Ricardo Pchevuzinske Katz (Red Hat).

CVE-2026-42965 Data

JSON